vnmrtz is an experienced security researcher and the Co-Founder and Lead Security Researcher at Enigma Dark, where they lead efforts in smart contract security for protocols such as Euler Finance, Aave, Silo Finance, Flower Money, and TapiocaDAO. vnmrtz specializes in smart contract auditing fuzz testing, and invariant testing, improving the security of decentralized EVM-based smart contract systems.
In addition to his work at Enigma Dark, vnmrtz serves as a Security Researcher at Spearbit and has contributed as a Smart Contract Auditor at Oak Security and Solidified, contributing to the security of complex and high-profile DeFi codebases.
With dedicated focus on fuzz testing and invariant research, vnmrtz has created the largest number of fuzzing suites developed by any security researcher. As a leading fuzzing expert, he has played a key role in advancing smart contract fuzz testing across the entire ecosystem. vnmrtz developed the Enigma Dark Invariant Framework and has collaborated with major protocols to design and implement over 10 customized testing suites that uncover edge cases and enhance protocol security.
Since beginning his white-hat journey in 2021, vnmrtz has uncovered and resolved critical vulnerabilities in leading protocols like AAVE and RAI, protecting over $33M in live assets.
- Protocol: Euler v2, EVK
- Description: The Euler Vault Kit (EVK) is the building block of Euler’s V2 ecosystem, enabling ERC-4626-based credit vaults with borrowing functionality and collateral-backed lending.
- Links:
- Protocol: Euler v2, Reward Streams
- Description: Staking Rewards protocol for permissionless rewards distribution of multiple tokens in staking and staking-free manner.
- Links:
- Protocol: Euler v2, EVC Playground
- Description: A playground for the Ethereum Vault Connector (EVC).
- Links:
- Protocol: Tapioca DAO, Bar
- Description: Core lending / borrowing and CDP engine of the Tapioca Protocol.
- Links:
- Protocol: Tapioca DAO, Tap Token
- Description: Token and option locking system of the Tapioca protocol.
- Links:
- Testing Suite: TBD
- Protocol: AAVE, v3.2-3.3
- Description: The Aave Protocol is a decentralised non-custodial liquidity protocol where users can participate as suppliers, borrowers, or liquidators.
- Links:
- Report: TBD
- Testing Suite: TBD
- Protocol: Silo v2, Core
- Description: Silo is the main component of the Silo v2 protocol. It implements lending logic, manages and isolates risk, and acts as a vault for assets.
- Links:
- Report: TBD
- Testing Suite
- Documentation
- Protocol: Euler v2, Euler Earn
- Description: Euler Earn is an open source protocol for permissionless risk curation on top of ERC4626 vaults (strategies).
- Links:
- Protocol: Flower Money, Core Contracts
- Description: A Synthetic Stablecoin protocol built on top of Euler's v2 ecosystem.
- Links:
- Report: TBD
- Testing Suite: TBD
- Protocol: Aave, v3.2 Protocol Upgrade
- Description: Aave v3.2 upgrade removes stable debt from the protocol and introduces liquid eModes.
- Links:
- Protocol: Flaunch Protocol
- Description: The ƒlaunch protocol is a launchpad platform built on Uniswap v4 hook system, incorporating advanced mechanics for token launch and trading.
- Links:
- Protocol: Flaunch Protocol
- Description: The ƒlaunch protocol is a launchpad platform built on Uniswap v4 hook system, incorporating advanced mechanics for token launch and trading.
- Links:
- Protocol: Juicebox, Protocol v4
- Description: Juicebox v4 is a protocol designed to manage token-based programmable treasuries for individuals and projects.
- Links:
- Protocol: Asterix, Vaults
- Description: Asterix is a protocol focused on unlocking new possibilities of digital ownership, leveraging innovative standards such as the DN404 and ERC-6551.
- Links:
- Protocol: Solady, ERC-6551
- Description: Solady is a code library of hyper-optimized solidity snippets.
- Links:
TBD
TBD
- Protocol: HAI
- Description: HAI is a stablecoin protocol that is backed by a variety of collaterals. It maintains its stability through the use of a PI controller which dynamically sets interest rates that affect the price of HAI.
- Links:
- Protocol: Mauve DEX
- Description: Mauve is a Uniswap v3 fork, with additional KYC mechanics.
- Links:
- Protocol: Mauve DEX
- Description: Mauve is a Uniswap v3 fork, with additional KYC mechanics.
- Links:
- Protocol: Xaya, Democrit
- Description: Democrit is a protocol and system for executing atomic trades on the XAYA platform. This allows players to trade their game assets for cryptocurrency (CHI) in a fully trustless manner.
- Links:
- Protocol: [HIGH] AAVE v3 token, DeFi Lending and Borrowing
- Link: Disclosure
- Reflection: Found a high-severity issue on the AAVE token, fixed by the AAVE team.
- Protocol: [HIGH] RAI (debt auctions bug), non-pegged stable-coin
- Link: Write-up
- Reflection: Discovered a high-severity bug in RAI, leading to unintended overinflation.
- Protocol: [HIGH] TAI (debt auctions bug), stablecoin
- Link: Private, Website
- Reflection: Addressed the identified bug in the TAI Company.
- Protocol: [CRITICAL] RAI (liquidations DOS, GEB framework zero day), non-pegged stable-coin
- Link: Disclosure
- Reflection: Discovered a critical bug in the GEB framework of the RAI stablecoin, securing +33M of TVL at risk.
- Company: Certora, AAVE
- Links:
- Reflection: Identified a high-severity issue, won first place in AAVE grant.
- Company: Certora, AAVE
- Links:
- Reflection: Implemented 18 formal rules, achieved sixth place in AAVE grant.
- Company: Certora
- Link: GitHub
- Reflection: Implemented 10 formal rules for Syndicate codebase.
- Company: C4 contest
- Description: Open Dollar is an Arbitrum-based CDP stablecoin platform based on the reflexer DEB framework.
- Link: Contest Page
- Reflection: Despite my usual focus on bug bounties and security reviews, I came across a high-severity issue identified only by another warden. This finding earned a spot in the official report and achieved a noteworthy sixth place in the contest rankings.
- Company: Independent Audit
- Description: Unhosted is an Account Abstraction (AA) wallet that utilizes a series of smart contracts for trustless DeFi integrations.
- Link: GitHub
- Company: yAcademy
- Link: Report
- Company: yAcademy
- Link: Report
- Reflection: Found a unique high-severity issue.
Delivered talks and seminars on EVM, fuzzing and smart contract security:
- [Euler's EthBerlin Hackerhouse] Euler v2 Fuzzing Workshop
- [Secureum: TrustX 2023] Tips to Master Fuzzing
- [Calyptus] Mastering Fuzzing
- [Opensense] Low-level Vulnerabilities
Collection of articles on EVM and security, along with detailed write-ups of publicly disclosed bugs on blog: